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DETAILED ACTION 

1 . Claims 1 -24 have been examined. 

Claim Rejections - 35 USC §102 

2. The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that form the 
basis for the rejections under this section made in this Office action: 

A person shall be entitled to a patent unless - 

(a) the invention was known or used by others in this country, or patented or described in a printed publication in this 
or a foreign country, before the invention thereof by the applicant for a patent. 

3. Claims 1-3, 8-10 and 22-28 are rejected under 35 U.S.C. 102(a) as being anticipated by 
Cassagnol et al. U.S. Pub. No. 20020129245 (hereinafter Cassagnol). 

4. As per claim 1, Cassagnol discloses a method comprising: 

receiving, in a secure environment in a terminal, via a secure channel, from a server 
outside said terminal, a first key for decrypting said encrypted application (Cassagnol: [0109]- 
[0112]: the keys are communicated between the VersaCrypt applets/secure environment at the 
key server and the VersaCrypt applets/secure environment in the apparatus. . .all communication 
between the key server and apparatus are encrypted); 

decrypting, in the secure environment, said encrypted application (204) by means of said 
first key (Cassagnol: [0025]: decrypt with first whitening key); 

re-encrypting, in said secure environment, the application by means of a second key 
(Cassagnol: [0025]: re-encrypt data with second whitening key); and 
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storing, outside said secure environment, the re-encrypted application (Cassagnol: 
[0043]: the re-encrypted information is stored externally). 

5. As per claim 2, Cassagnol discloses a method comprising: 

receiving an encrypted application in a terminal (Cassagnol: [001 1]: receive encrypted 
information); 

receiving, in a secure environment in said terminal, via a secure channel, from a server 
outside said terminal, a first key for decrypting said encrypted application (Cassagnol: [0111]- 
[0112]: receiving key from key server through secure channel); 

encrypting, in said secure environment, said first key by means of a second key 
(Cassagnol: [0058] and [0061]-[0062]: the encrypted master key/encrypted first key can be 
decrypted using device key/second key); and 

storing, outside said secure environment, the encrypted first key (Cassagnol: [0058]: the 
whitening keys are stored outside of the secure environment). 

6. As per claim 3, Cassagnol discloses the method according to claim 1 . Cassagnol further 
discloses encrypting, in said secure environment (205), said first key by means of the second 
key; and storing, outside said secure environment (205), the encrypted first key (Cassagnol: 
[0058]: keys are encrypted and stored externally). 



7. 



As per claim 8, Cassagnol discloses an apparatus comprising: 
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an application including an installation part for receiving, in a secure environment in said 
terminal, via a secure channel, from a server outside said terminal, a first key for decrypting said 
encrypted application (Cassagnol: [01 1 1]-[01 12]: receiving key from key server through secure 
channel); 

a processor for decrypting, in the secure environment, said encrypted application (204) by 
means of said first key (Cassagnol: [0025]: decrypt with first whitening key); 

said processor for re-encrypting, in said secure environment, the application by means of 
a second key (Cassagnol: [0025]: re-encrypt data with second whitening key); and 

memory for storing, outside said secure environment, the re-encrypted application 
(Cassagnol: [0043]: the re-encrypted information is stored externally). 

8. As per claim 9, Cassagnol discloses an apparatus comprising: 

an application including an installation part for receiving, in a secure environment in said 
terminal, via a secure channel, from a server outside said terminal, a first key for decrypting said 
encrypted application (Cassagnol: [011 1]-[01 12]: receiving key from key server through secure 
channel); 

a processor for encrypting, in said secure environment, said first key by means of a 
second key (Cassagnol: [0058]: the encrypted key is stored externally); and 

said processor for storing, outside said secure environment, the encrypted first key 
(Cassagnol: [0058]). 
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9. As per claim 10, Cassagnol discloses the apparatus of claim 8. Cassagnol further 
discloses wherein said processor is: 

for encrypting, in said secure environment (205), said first key by means of the second 
key; and storing, outside said secure environment (205), the encrypted first key (Cassagnol: 
[0058]: keys are encrypted and stored externally). 

10. As per claim 22, Cassagnol discloses a terminal device comprising: 

an installation part of an application , responsive to a first key provided over a secure 
channel from a server external to said terminal device for providing said first key (Cassagnol: 
[0111]: receive the cryptographic key); and 

a secure environment, responsive to said first key from said installation part of said 
application for decrypting an encrypted application in said terminal device using said first key 
received over said secure channel from said server external to said terminal device (Cassagnol: 
[01 1 1]-[01 12]: receiving key from key server thorough secure channel to decrypt data within 
secure environment). 

11. As per claim 23, Cassagnol discloses the terminal device of claim 22. Cassagnol further 
discloses wherein said first key is encrypted by said server using a second key belonging to said 
terminal device for providing said first key from said server to said terminal device (Cassagnol: 
[01 10]-[01 12]: data and key communication between the device and server are encrypted). 
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12. As per claim 24, Cassagnol discloses an integrated circuit for installation in a terminal 
comprising: 

a signal processor and a secure environment, said secure environment responsive to a first 
key from a server outside said terminal received over a secure channel for decrypting an 
encrypted application within said secure environment (Cassagnol: [01 1 1]-[01 12]: receiving key 
from key server through secure channel), for executing said decrypted application within said 
secure environment (Cassagnol: [0025]: decrypt with first whitening key) and for encrypting said 
first key with a second key belonging to said terminal device for storage outside said secure 
environment (Cassagnol: [0111]: communication between device and key server is encrypted 
with session key/second key) so that said first key can be used again with said secure 
environment without need for receipt again of said first key from said server (Cassagnol: [0112]: 
the server sends key material to the device/first key). 

13. As per claim 25, Cassagnol discloses the method of claim 2. Cassagnol further discloses 
receiving another encrypted application in the terminal (Cassagnol: [0043]: handling the 
encrypted software within the secure environment); loading the encrypted first key from outside 
said secure environment (Cassagnol: [0058]: the key is imported externally for decryption); 
decrypting the encrypted first key with the second key (Cassagnol: [0061]: the master key is 
decrypted using device key); and decrypting the other encrypted application with the decrypted 
first key (Cassagnol: [0061]: the software master key is used to decrypt the application). 
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14. As per claim 26, Cassagnol discloses the method of claim 25. Cassagnol further discloses 
re-encrypting the first key by means of a second key (Cassagnol: [0062]: the EMK/first key is 
encrypted with device key/second key); and storing, outside said secure environment, the 
encrypted first key (Cassagnol: [0058]: the encrypted whitening key is typically stored outside 
the secure environment). 

15. As per claim 27, Cassagnol discloses the apparatus of claim 9. Cassagnol further 
discloses wherein said installation part is for receiving another encrypted application in the 
terminal (Cassagnol: [0043]: handling the encrypted software within the secure environment); 
loading the encrypted first key from outside said secure environment (Cassagnol: [0058]: the key 
is imported externally for decryption); decrypting the encrypted first key with the second key 
(Cassagnol: [0061]: the master key is decrypted using device key); and decrypting the other 
encrypted application with the decrypted first key (Cassagnol: [0061]: the software master key is 
used to decrypt the application). 

16. As per claim 28, Cassagnol discloses the apparatus of claim 27. Cassagnol further 
discloses wherein said processor is further configured to: re-encrypting the first key by means of 
a second key (Cassagnol: [0062]: the EMK/first key is encrypted with device key/second key); 
and storing, outside said secure environment, the encrypted first key (Cassagnol: [0058]: the 
encrypted whitening key is typically stored outside the secure environment). 
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Claim Rejections - 35 USC §103 

17. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in 
section 102 of this title, if the differences between the subject matter sought to be patented and the prior art are 
such that the subject matter as a whole would have been obvious at the time the invention was made to a person 
having ordinary skill in the art to which said subject matter pertains. Patentability shall not be negatived by the 
manner in which the invention was made. 

18. Claims 4-6, 11-13, 15-17 and 19-20 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over Cassagnol in view of Matyas ct al. U.S. Pat. No. 705121 1 (hereinafter 
Maty as). 

19. As per claim 4, Cassagnol discloses the method according to claim 1 . Cassagnol does not 
explicitly disclose wherein said second key is symmetric and can be derived from the application 
(202). However, Matyas discloses generating a new key for re-encrypting protected software 
derived from the software (Matyas: column 10 lines 26-46: new key is generated from S and K 
and S is provided along with application). It would have been obvious to one having ordinary 
skill in the art to generate a new key based on information provided in the application because 
the derived information can be used as a seed in generating new key. Therefore, it would have 
been obvious to one having ordinary skill in the art at the time of applicant's invention to 
combine the teachings of Matyas within the system of Cassagnol because it prevents malicious 
from using the first key by generating a new key based on additional information. 
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20. As per claim 5, Cassagnol discloses the method according to claim 4. Cassagnol as 
modified further discloses wherein said second key is comprised in the application (202) itself 
(Matyas: column 10 lines 26-46). 

21. As per claim 6, Cassagnol discloses the method according to claim 4. Cassagnol as 
modified further discloses wherein said second key is generated in the secure environment (205) 
using an application seed (Cassagnol: [0025]: generating new key in the secure environment). 

22. As per claim 11, Cassagnol discloses the apparatus according to claim 8. Cassagnol does 
not explicitly disclose wherein said second key is symmetric and can be derived from the 
application (202). However, Matyas discloses generating a new key for re-encrypting protected 
software derived from the software (Matyas: column 10 lines 26-46: new key is generated from 
S and K and S is provided along with application). It would have been obvious to one having 
ordinary skill in the art to generate a new key based on information provided in the application 
because the derived information can be used as a seed in generating new key. Therefore, it would 
have been obvious to one having ordinary skill in the art at the time of applicant's invention to 
combine the teachings of Matyas within the system of Cassagnol because it prevents malicious 
from using the first key by generating a new key based on additional information. 

23. As per claim 12, Cassagnol discloses the apparatus according to claim 1 1 . Cassagnol as 
modified further discloses wherein said second key is comprised in the application (202) itself 
(Matyas: column 10 lines 26-46). 
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24. As per claim 13, Cassagnol discloses the apparatus according to claim 1 1 . Cassagnol as 
modified further discloses wherein said second key is generated in the secure environment (205) 
using an application seed (Cassagnol: [0025]: generating new key in the secure environment). 

25. As per claim 15, Cassagnol discloses the method according to claim 2. Cassagnol does 
not explicitly disclose wherein said second key is symmetric and can be derived from the 
application (202). However, Matyas discloses generating a new key for re-encrypting protected 
software derived from the software (Matyas: column 10 lines 26-46: new key is generated from 
S and K and S is provided along with application). It would have been obvious to one having 
ordinary skill in the art to generate a new key based on information provided in the application 
because the derived information can be used as a seed in generating new key. Therefore, it would 
have been obvious to one having ordinary skill in the art at the time of applicant's invention to 
combine the teachings of Matyas within the system of Cassagnol because it prevents malicious 
from using the first key by generating a new key based on additional information. 

26. As per claim 16, Cassagnol discloses the method according to claim 15. Cassagnol as 
modified further discloses wherein said second key is comprised in the application (202) itself 
(Matyas: column 10 lines 26-46). 
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27. As per claim 17, Cassagnol discloses the method according to claim 15. Cassagnol as 
modified further discloses wherein said second key is generated in the secure environment (205) 
using an application seed (Cassagnol: [0025]: generating new key in the secure environment). 

28. As per claim 19, Cassagnol discloses the method according to claim 9. Cassagnol does 
not explicitly disclose wherein said second key is symmetric and can be derived from the 
application (202). However, Matyas discloses generating a new key for re-encrypting protected 
software derived from the software (Matyas: column 10 lines 26-46: new key is generated from 
S and K and S is provided along with application). It would have been obvious to one having 
ordinary skill in the art to generate a new key based on information provided in the application 
because the derived information can be used as a seed in generating new key. Therefore, it would 
have been obvious to one having ordinary skill in the art at the time of applicant's invention to 
combine the teachings of Matyas within the system of Cassagnol because it prevents malicious 
from using the first key by generating a new key based on additional information. 

29. As per claim 20, Cassagnol discloses the method according to claim 19. Cassagnol as 
modified further discloses wherein said second key is comprised in the application (202) itself 
(Matyas: column 10 lines 26-46). 



30. Claims 7, 14, 18, 21, and 29-32 are rejected under 35 U.S.C. 103(a) as being unpatentable 
over Cassagnol in view of Takeuchi et al. U.S. Pat. No. 6647495 (hereinafter Takeuchi). 
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31. As per claim 7, Cassagnol discloses the method of claim 1 . Cassagnol does not explicitly 
disclose wherein multiple keys can be transferred successively on the secure channel into the 
secure environment, each key being used to decrypt a corresponding encrypted application in the 
secure environment. However, Takeuchi discloses transmitting decryption key when protected 
software is transmitted to the program execution program (Takeuchi: figure 1). It would have 
been obvious to one having ordinary skill in the art to process different software with different 
keys sequentially. Therefore, it would have been obvious to one having ordinary skill in the art at 
the time of applicant's invention to combine the teachings of Takeuchi within the system of 
Cassagnol because it is well known in the art to process multiple software within a single 
processor. 

32. As per claim 14, Cassagnol discloses the apparatus of claim 8. Cassagnol does not 
explicitly disclose wherein multiple keys can be transferred successively on the secure channel 
into the secure environment, each key being used to decrypt a corresponding encrypted 
application in the secure environment. However, Takeuchi discloses transmitting decryption key 
when protected software is transmitted to the program execution program (Takeuchi: figure 1). It 
would have been obvious to one having ordinary skill in the art to process different software with 
different keys sequentially. Therefore, it would have been obvious to one having ordinary skill in 
the art at the time of applicant's invention to combine the teachings of Takeuchi within the 
system of Cassagnol because it is well known in the art to process multiple software within a 
single processor. 
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33. As per claim 18, Cassagnol discloses the method of claim 2. Cassagnol does not 
explicitly disclose wherein multiple keys can be transferred successively on the secure channel 
into the secure environment, each key being used to decrypt a corresponding encrypted 
application in the secure environment. However, Takeuchi discloses transmitting decryption key 
when protected software is transmitted to the program execution program (Takeuchi: figure 1). It 
would have been obvious to one having ordinary skill in the art to process different software with 
different keys sequentially. Therefore, it would have been obvious to one having ordinary skill in 
the art at the time of applicant's invention to combine the teachings of Takeuchi within the 
system of Cassagnol because it is well known in the art to process multiple software within a 
single processor. 

34. As per claim 21, Cassagnol discloses the method of claim 9. Cassagnol does not 
explicitly disclose wherein multiple keys can be transferred successively on the secure channel 
into the secure environment, each key being used to decrypt a corresponding encrypted 
application in the secure environment. However, Takeuchi discloses transmitting decryption key 
when protected software is transmitted to the program execution program (Takeuchi: figure 1). It 
would have been obvious to one having ordinary skill in the art to process different software with 
different keys sequentially. Therefore, it would have been obvious to one having ordinary skill in 
the art at the time of applicant's invention to combine the teachings of Takeuchi within the 
system of Cassagnol because it is well known in the art to process multiple software within a 
single processor. 
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35. As per claim 29, Cassagnol as modified discloses the method of claim 7. Cassagnol as 
modified further disclose wherein said processor is further configured to: 

encrypting, in said secure environment, each of said multiple keys by means of the 
second key (Cassagnol: [0058] and [0061]-[0062]: the encrypted master key/encrypted first key 
can be decrypted using device key/second key); and 

storing, outside said secure environment, each of the multiple keys encrypted by the 
second key (Cassagnol: [0058]: the whitening keys are stored outside of the secure environment). 

36. As per claim 30, Cassagnol as modified discloses the method of claim 29. Cassagnol as 
modified further discloses wherein said installation part is for receiving another encrypted 
application in the terminal (Cassagnol: [0043]: handling the encrypted software within the secure 
environment); loading the encrypted first key from outside said secure environment (Cassagnol: 
[0058]: the key is imported externally for decryption); decrypting the encrypted first key with the 
second key (Cassagnol: [0061]: the master key is decrypted using device key); and decrypting 
the other encrypted application with the decrypted first key (Cassagnol: [0061]: the software 
master key is used to decrypt the application). 

37. As per claim 31, Cassagnol as modified discloses the apparatus of claim 14. Cassagnol as 
modified further disclose wherein said processor is further configured to: 

encrypting, in said secure environment, each of said multiple keys by means of the 
second key (Cassagnol: [0058] and [0061]-[0062]: the encrypted master key/encrypted first key 
can be decrypted using device key/second key); and 
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storing, outside said secure environment, each of the multiple keys encrypted by the 
second key (Cassagnol: [0058]: the whitening keys are stored outside of the secure environment). 

38. As per claim 32, Cassagnol as modified discloses the method of claim 29. Cassagnol as 
modified further discloses wherein said installation part is for receiving another encrypted 
application in the terminal (Cassagnol: [0043]: handling the encrypted software within the secure 
environment); loading the encrypted first key from outside said secure environment (Cassagnol: 
[0058]: the key is imported externally for decryption); decrypting the encrypted first key with the 
second key (Cassagnol: [0061]: the master key is decrypted using device key); and decrypting 
the other encrypted application with the decrypted first key (Cassagnol: [0061]: the software 
master key is used to decrypt the application). 

Response to Arguments 

39. Applicant's arguments filed on 10/27/08 have been fully considered but they are not 
persuasive. 

40. Regarding applicant's remarks, applicant mainly argues that the prior art of record fails to 
clearly define the first key that is transferred by key server to the secure device when the prior art 
discloses software import/export master key and whitening keys. However, the examiner 
disagrees. Cassagnol discloses that the software import/export master key is transferred from key 
server to the apparatus (Cassagnol: [0112]) for import/export operation on the data (Cassagnol: 
[0043]: the secure environment performs import/export for decryption and encryption) and the 
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whitening key is later generated through different cycles of import/export following the initial 
import/export key operation using import/export master key (Cassagnol: [0057]). Therefore, 
although terms are used differently, Cassagnol discloses the first key by referring to the 
import/export master key and whitening key in key cycling process. 

Conclusion 

4 1 . THIS ACTION IS MADE FINAL. Applicant is reminded of the extension of time 
policy as set forth in 37 CFR 1.136(a). 

A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within TWO 
MONTHS of the mailing date of this final action and the advisory action is not mailed until after 
the end of the THREE-MONTH shortened statutory period, then the shortened statutory period 
will expire on the date the advisory action is mailed, and any extension fee pursuant to 37 
CFR 1.136(a) will be calculated from the mailing date of the advisory action. In no event, 
however, will the statutory period for reply expire later than SIX MONTHS from the mailing 
date of this final action. 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to SHIN-HON CHEN whose telephone number is (571)272-3789. 
The examiner can normally be reached on Monday through Friday 8:30am to 5:30pm. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Ayaz Sheikh can be reached on (571) 272-3795. The fax phone number for the 
organization where this application or proceeding is assigned is 571-273-8300. 
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Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). If you would 
like assistance from a USPTO Customer Service Representative or access to the automated 
information system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 

Shin-Hon Chen 
Examiner 
Art Unit 2431 

/Shin-Hon Chen/ 
Examiner, Art Unit 243 1 



